nerdexam
EC-Council

312-50V10 · Question #169

What attack is used to crack passwords by using a precomputed table of hashed passwords?

The correct answer is B. Rainbow Table Attack. A rainbow table attack reverses password hashes by looking them up in a precomputed table that maps known hash values back to their original plaintext passwords.

System Hacking

Question

What attack is used to crack passwords by using a precomputed table of hashed passwords?

Options

  • ABrute Force Attack
  • BRainbow Table Attack
  • CDictionary Attack
  • DHybrid Attack

How the community answered

(33 responses)
  • A
    3% (1)
  • B
    91% (30)
  • D
    6% (2)

Why each option

A rainbow table attack reverses password hashes by looking them up in a precomputed table that maps known hash values back to their original plaintext passwords.

ABrute Force Attack

A brute force attack systematically generates and hashes every possible character combination at runtime, with no precomputed table involved.

BRainbow Table AttackCorrect

A rainbow table attack uses large precomputed data structures containing hash-to-plaintext mappings, enabling an attacker to crack an unsalted password hash through a fast lookup rather than recomputing hashes at runtime. This is why password salting is the standard countermeasure - a unique salt per password makes all precomputed rainbow tables useless by ensuring identical passwords produce different hashes.

CDictionary Attack

A dictionary attack tests a predefined wordlist of common passwords against the hash at runtime, computing each hash as it goes rather than using any precomputed hash-to-plaintext mapping.

DHybrid Attack

A hybrid attack combines dictionary words with brute force mutations such as appending numbers or symbols, but still computes hashes at runtime rather than relying on a precomputed table.

Concept tested: Rainbow table attack and precomputed hash reversal

Source: https://csrc.nist.gov/glossary/term/rainbow_table

Topics

#rainbow table#password cracking#precomputed hash#hash attack

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice